Provide a function for launchers for dropping process capabilities

[platform/core/security/security-manager.git] / src / include / security-manager.h

diff --git a/src/include/security-manager.h b/src/include/security-manager.h
index 81ddade..82a3431 100644 (file)
--- a/src/include/security-manager.h
+++ b/src/include/security-manager.h
@@ -166,6 +166,33 @@ int security_manager_set_process_label_from_binary(const char *path);
  */
 int security_manager_set_process_label_from_appid(const char *app_id);
 
+/**
+ * For given app_id and current user, calculate allowed privileges that give
+ * direct access to file system resources. Then add current process to
+ * supplementary groups that are assigned to these resources.
+ *
+ * In Tizen some sensitive resources are being accessed by applications directly.
+ * The resources, being file system objects, are owned by dedicated GIDs and only
+ * processes in those UNIX groups can access them. This function is used for
+ * adding application process to all permitted groups that are assigned to such
+ * privileges.
+ *
+ * \param[in] Application identifier
+ * \return API return code or error code
+ */
+int security_manager_set_process_groups_from_appid(const char *app_id);
+
+/**
+ * The above launcher functions, manipulating process Smack label and group,
+ * require elevated privileges. Since they will be called by launcher after fork,
+ * in the process for the application, privileges should be dropped before
+ * running an actual application. This function is a helper for that purpose -
+ * it drops capabilities from the process.
+ *
+ * \return API return code or error code
+ */
+int security_manager_drop_process_privileges(void);
+
 
 #ifdef __cplusplus
 }